Add wildcard to secret permission

jlongland · jlongland · commit 3ea0319e82e6 · 2024-08-07T09:04:57.000-07:00
diff --git a/template.yaml b/template.yaml
@@ -686,7 +686,7 @@ Resources:
         - Effect: Allow
           Action:
           - secretsmanager:GetSecretValue
-          Resource: !Sub arn:${AWS::Partition}:secretsmanager:${AWS::Region}:${AWS::AccountId}:secret:${ResourcePrefixParameter}-cd2-db-user-${EnvironmentParameter}-canvas
+          Resource: !Sub arn:${AWS::Partition}:secretsmanager:${AWS::Region}:${AWS::AccountId}:secret:${ResourcePrefixParameter}-cd2-db-user-${EnvironmentParameter}-canvas*
         - Effect: Allow
           Action:
           - logs:CreateLogGroup
